A backdoor has been added to the web server analytics Piwik which allows attackers to take control of a system. Users who have setup Piwik in the last few weeks after downloading it from the server of the open source project and installing it, should review their servers immediately.